[Pkg-samba-maint] Bug#1001068: samba: Missing upstream commit 0a546be0 on bullseye, bookworm and sid (part of CVE-2020-25717)
Salvatore Bonaccorso
carnil at debian.org
Sat Dec 4 10:17:27 GMT 2021
On Fri, Dec 03, 2021 at 03:44:02PM +0100, Jörg Behrmann wrote:
> Package: samba
> Version: 2:4.13.13+dfsg-1~deb11u2
> Severity: important
> X-Debbugs-Cc: team at security.debian.org
>
> The upstream samba commit 0a546be0 is included in the buster security release
> 2:4.9.5+dfsg-5+deb10u2 via the patch file bug-14901-v4-9.patch, but is missing
> in the bullseye security release 2:4.13.13+dfsg-1~deb11u2.
>
> Pleae apply that patch in bullseye as well, so that the idmap_nss fallback via
> SID mapping works.
It would be sensible indeed to apply
https://bugzilla.samba.org/show_bug.cgi?id=14901#c9 as well for
bullseye to not regress in this case.
Can you push such a change to bullseye-pu (not via security) given the
point release window for uploads is closing on next weekend?
https://lists.debian.org/795fc739fd9f27e75975ecfd07bfc1c0a36f2a25.camel@adam-barratt.org.uk
Regards,
Salvatore
More information about the Pkg-samba-maint
mailing list